CVE-2006-0625
published 2006-02-09CVE-2006-0625: Directory traversal vulnerability in Spip_RSS.PHP in SPIP 1.8.2g and earlier allows remote attackers to read or include arbitrary files via ".." sequences in…
PriorityP339medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EXPLOIT
EPSS
4.77%
90.8th percentile
Directory traversal vulnerability in Spip_RSS.PHP in SPIP 1.8.2g and earlier allows remote attackers to read or include arbitrary files via ".." sequences in the GLOBALS[type_urls] parameter, which could then be used to execute arbitrary code via resultant direct static code injection in the file parameter to spip_acces_doc.php3.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | spip | < spip 2.0.6-1 (bullseye) | spip 2.0.6-1 (bullseye) |
| spip | spip | — | — |
| spip | spip | — | — |
| spip | spip | — | — |
| spip | spip | >= 0 < 2.0.6-1 | 2.0.6-1 |
| spip | spip | >= 0 < 2.0.6-1 | 2.0.6-1 |
| spip | spip | >= 0 < 2.0.6-1 | 2.0.6-1 |
CVSS provenance
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:P/A:N
osv6.4MEDIUM
vendor_debian6.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2006-0625: spip - Directory traversal vulnerability in Spip_RSS.PHP in SPIP 1.8.2g and earlier all...
vendor_debian·2006·CVSS 6.4
CVE-2006-0625 [MEDIUM] CVE-2006-0625: spip - Directory traversal vulnerability in Spip_RSS.PHP in SPIP 1.8.2g and earlier all...
Directory traversal vulnerability in Spip_RSS.PHP in SPIP 1.8.2g and earlier allows remote attackers to read or include arbitrary files via ".." sequences in the GLOBALS[type_urls] parameter, which could then be used to execute arbitrary code via resultant direct static code injection in the file parameter to spip_acces_doc.php3.
Scope: local
bullseye: resolved (fixed in 2.0.6-1)
forky: resolved (fixed in 2.0.6-1)
sid: resolved (fixed in 2.0.6-1)
trixie: resolved (fixed in 2.0.6-1)
GHSA
GHSA-p4gj-wxqq-wmc7: Directory traversal vulnerability in Spip_RSS
ghsa_unreviewed·2022-05-01
CVE-2006-0625 [MEDIUM] GHSA-p4gj-wxqq-wmc7: Directory traversal vulnerability in Spip_RSS
Directory traversal vulnerability in Spip_RSS.PHP in SPIP 1.8.2g and earlier allows remote attackers to read or include arbitrary files via ".." sequences in the GLOBALS[type_urls] parameter, which could then be used to execute arbitrary code via resultant direct static code injection in the file parameter to spip_acces_doc.php3.
OSV
CVE-2006-0625: Directory traversal vulnerability in Spip_RSS
osv·2006-02-09·CVSS 6.4
CVE-2006-0625 [MEDIUM] CVE-2006-0625: Directory traversal vulnerability in Spip_RSS
Directory traversal vulnerability in Spip_RSS.PHP in SPIP 1.8.2g and earlier allows remote attackers to read or include arbitrary files via ".." sequences in the GLOBALS[type_urls] parameter, which could then be used to execute arbitrary code via resultant direct static code injection in the file parameter to spip_acces_doc.php3.
No detection rules found.
No writeups or analysis indexed.
http://retrogod.altervista.org/spip_182g_shell_inj_xpl.htmlhttp://secunia.com/advisories/18676http://securitytracker.com/id?1015602http://www.osvdb.org/23086http://www.securityfocus.com/bid/16556http://www.vupen.com/english/advisories/2006/0483https://exchange.xforce.ibmcloud.com/vulnerabilities/24600http://retrogod.altervista.org/spip_182g_shell_inj_xpl.htmlhttp://secunia.com/advisories/18676http://securitytracker.com/id?1015602http://www.osvdb.org/23086http://www.securityfocus.com/bid/16556http://www.vupen.com/english/advisories/2006/0483https://exchange.xforce.ibmcloud.com/vulnerabilities/24600
2006-02-09
Published